|
266291
|
7.8 |
HIGH
Local
|
cisco
|
ios_xr
|
A vulnerability in Cisco IOS XR Software could allow an authenticated, local attacker to log in to the device with the privileges of the root user. More Information: CSCva38434. Known Affected Releas…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2016-9215
|
2024-11-21 12:00 |
2016-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266292
|
6.1 |
MEDIUM
Network
|
cisco
|
identity_services_engine_software
|
Cisco Identity Services Engine (ISE) contains a vulnerability that could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against the user of the web interface…
|
CWE-79
Cross-site Scripting
|
CVE-2016-9214
|
2024-11-21 12:00 |
2016-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266293
|
7.5 |
HIGH
Network
|
cisco
|
ons_15454_sdh_multiservice_platform_software
|
A vulnerability in TCP port management in Cisco ONS 15454 Series Multiservice Provisioning Platforms could allow an unauthenticated, remote attacker to cause the controller card to unexpectedly reloa…
|
CWE-20
Improper Input Validation
|
CVE-2016-9211
|
2024-11-21 12:00 |
2016-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266294
|
7.5 |
HIGH
Network
|
cisco
|
unified_communications_manager
|
A vulnerability in the Cisco Unified Reporting upload tool accessed via the Cisco Unified Communications Manager could allow an unauthenticated, remote attacker to modify arbitrary files on the file …
|
CWE-22
Path Traversal
|
CVE-2016-9210
|
2024-11-21 12:00 |
2016-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266295
|
6.5 |
MEDIUM
Network
|
cisco
|
emergency_responder
|
A vulnerability in the File Management Utility, the Download File form, and the Serviceability application of Cisco Emergency Responder could allow an authenticated, remote attacker to access files i…
|
CWE-22
Path Traversal
|
CVE-2016-9208
|
2024-11-21 12:00 |
2016-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266296
|
6.5 |
MEDIUM
Network
|
cisco
|
expressway
|
A vulnerability in the HTTP traffic server component of Cisco Expressway could allow an unauthenticated, remote attacker to initiate TCP connections to arbitrary hosts. This does not allow for full t…
|
CWE-20
CWE-254
Improper Input Validation
7PK - Security Features
|
CVE-2016-9207
|
2024-11-21 12:00 |
2016-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266297
|
7.5 |
HIGH
Network
|
cisco
|
web_security_appliance
|
A vulnerability in the Decrypt for End-User Notification configuration parameter of Cisco AsyncOS Software for Cisco Web Security Appliances could allow an unauthenticated, remote attacker to connect…
|
CWE-20
Improper Input Validation
|
CVE-2016-9212
|
2024-11-21 12:00 |
2016-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266298
|
4.3 |
MEDIUM
Network
|
cisco
|
firepower_services_for_adaptive_security_appliance
|
A vulnerability in TCP processing in Cisco FirePOWER system software could allow an unauthenticated, remote attacker to download files that would normally be blocked. Affected Products: The following…
|
CWE-254
7PK - Security Features
|
CVE-2016-9209
|
2024-11-21 12:00 |
2016-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266299
|
6.1 |
MEDIUM
Network
|
cisco
|
unified_communications_manager
|
A vulnerability in the ccmadmin page of Cisco Unified Communications Manager (CUCM) could allow an unauthenticated, remote attacker to conduct reflected cross-site scripting (XSS) attacks. More Infor…
|
CWE-79
Cross-site Scripting
|
CVE-2016-9206
|
2024-11-21 12:00 |
2016-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266300
|
7.5 |
HIGH
Network
|
cisco
|
ios_xr
|
A vulnerability in the HTTP 2.0 request handling code of Cisco IOS XR Software could allow an unauthenticated, remote attacker to cause the Event Management Service daemon (emsd) to crash, resulting …
|
CWE-399
Resource Management Errors
|
CVE-2016-9205
|
2024-11-21 12:00 |
2016-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
